Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
File: lwhyRZO0dTF1shSBLPaJGmRfhMU.mft (raw, json)
Hash identifier: XTC0wTJ1TNmggRinEAh3ngxULhm/RBn3OEK8gqYmEZc=
Subject key identifier: E3:C1:42:E7:F4:B1:D1:3F:BC:D0:1F:D0:E4:58:49:4F:0A:38:32:C5
Authority key identifier: 97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
Certificate issuer: /CN=9708724593b4753175b214812cf6891a645f84c5
Certificate serial: 019D9C631BD3569DA19CB2C764B3A130D84B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
Manifest number: 03E9
Signing time: Fri 17 Apr 2026 17:00:33 +0000
Manifest this update: Fri 17 Apr 2026 17:00:33 +0000
Manifest next update: Sat 18 Apr 2026 17:00:33 +0000
Files and hashes: 1: cGIbIuyd_-GcZFAPYp_iRhjY8Fs.roa (hash: 4l9uaitU/oM93/Oha9XHLDc9sPtfot6T5F/wqRyQOyk=)
2: lwhyRZO0dTF1shSBLPaJGmRfhMU.crl (hash: NO715V0oHAptx/GwA6ayDET5wcJ5ZadSh3fgUtvrLZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 17:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:1b:d3:56:9d:a1:9c:b2:c7:64:b3:a1:30:d8:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9708724593b4753175b214812cf6891a645f84c5
Validity
Not Before: Apr 17 17:00:33 2026 GMT
Not After : Apr 18 17:00:33 2026 GMT
Subject: CN=e3c142e7f4b1d13fbcd01fd0e458494f0a3832c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1d:52:8e:8f:25:e2:3d:6e:9f:51:e9:a0:34:
46:79:d3:d5:4f:87:65:32:ba:71:2f:db:b8:81:ea:
a3:cd:ac:18:6a:6b:27:65:3d:2b:3a:be:83:e2:50:
27:e9:ba:95:2c:56:68:ad:9d:23:58:24:0a:f7:a3:
9b:87:08:e1:64:d0:09:bd:cb:be:8d:da:11:b4:25:
a7:87:c0:56:7a:ee:57:e9:0b:f8:19:6d:d6:0d:de:
e5:1a:82:d8:33:3c:db:ea:dc:cd:d1:04:d1:0f:4c:
97:21:31:0d:58:dc:63:11:1b:bb:93:75:a9:44:84:
84:3d:6e:f2:92:a1:d2:af:34:bf:62:e5:db:30:b0:
11:72:01:03:51:c2:0e:3a:2f:ea:b9:9e:5c:69:46:
6f:90:ca:90:5a:27:df:45:62:55:73:0e:7f:2b:4b:
0f:4e:01:11:cc:09:af:44:04:6f:f5:eb:d6:48:9a:
76:02:9f:f0:80:2f:6f:16:72:f5:21:09:86:b1:04:
66:0e:f6:b5:fa:07:3a:b7:31:4d:4b:7b:eb:c7:f7:
de:71:82:69:f1:c2:3d:df:2d:7c:0b:a1:d8:f2:2e:
40:ed:63:af:3a:85:de:a4:8c:43:91:24:40:18:6b:
54:b5:4b:4a:ba:fa:ed:5e:7d:4e:8b:dc:bb:3f:a1:
41:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C1:42:E7:F4:B1:D1:3F:BC:D0:1F:D0:E4:58:49:4F:0A:38:32:C5
X509v3 Authority Key Identifier:
keyid:97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:7c:db:77:7b:60:8e:22:c4:4d:2e:05:9a:55:89:c2:36:72:
63:99:82:9d:cb:e1:65:ee:bd:60:b5:69:b1:78:4d:13:16:68:
56:0c:d5:16:fa:c2:ed:ea:45:d7:fe:8d:5b:b3:cf:93:84:8d:
71:d9:5b:7e:2c:bc:2f:7c:b0:14:ec:c6:19:03:4e:25:d8:b4:
a5:b3:a1:e0:33:a6:71:ae:f2:71:8b:40:8a:a7:db:ed:35:e3:
b4:74:41:19:e1:3f:de:be:d6:0b:94:7b:71:b3:ab:f9:b5:70:
d1:01:58:07:7a:93:c9:a1:d7:5f:ac:40:05:9d:45:6f:82:06:
17:2a:fa:da:9c:3d:7d:03:17:20:83:32:35:04:59:56:69:32:
92:c7:3e:e7:b6:3c:c3:c1:3f:72:12:15:d8:4e:4a:62:20:f3:
7d:9e:f2:f6:0f:80:45:6e:d8:6e:ff:cf:5a:93:bf:49:42:ea:
f5:63:0a:38:53:e0:ec:87:fa:63:b5:15:82:21:72:9f:20:08:
21:07:d9:6d:5a:fc:c9:94:c0:23:46:b9:60:48:90:e1:a1:91:
e3:ae:c3:54:05:06:21:e7:61:c0:ef:e2:2c:79:f2:53:b7:03:
92:43:87:40:06:18:08:37:53:74:91:fd:22:c6:20:08:76:0a:
32:e9:d8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 04:01:23 2026 by rpki-client